Home

CVE-2016-8867

Description

Docker Engine 1.12.2 enabled ambient capabilities with misconfigured capability policies. This allowed malicious images to bypass user permissions to access files within the container filesystem or mounted volumes.

Risk Information

Base Score
7.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.367

Associated Vulnerability

VulnerabilityOS Platform
Update docker 1.12.2 to latest versionWindows
(RHSA-2020:2653) docker security update docker-1.13.1-162.git64e9980.el7_8.x86_64.rpmLinux
(RHSA-2020:2653) docker security update docker-client-1.13.1-162.git64e9980.el7_8.x86_64.rpmLinux
(RHSA-2020:2653) docker security update docker-common-1.13.1-162.git64e9980.el7_8.x86_64.rpmLinux
(RHSA-2020:2653) docker security update docker-logrotate-1.13.1-162.git64e9980.el7_8.x86_64.rpmLinux
(RHSA-2020:2653) docker security update docker-lvm-plugin-1.13.1-162.git64e9980.el7_8.x86_64.rpmLinux
(RHSA-2020:2653) docker security update docker-novolume-plugin-1.13.1-162.git64e9980.el7_8.x86_64.rpmLinux
(RHSA-2020:2653) docker security update docker-rhel-push-plugin-1.13.1-162.git64e9980.el7_8.x86_64.rpmLinux
(RHSA-2020:2653) docker security update docker-v1.10-migrator-1.13.1-162.git64e9980.el7_8.x86_64.rpmLinux
Docker-engine update (ELSA-2017-3511) docker-engine-1.12.6-1.0.1.el6.x86_64.rpmLinux
Docker-engine-selinux update (ELSA-2017-3511) docker-engine-selinux-1.12.6-1.0.1.el7.noarch.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234